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n . " ™ e MAI *-MG DA TE of this communication appears on the cover sheet with the correspondence address « 

Period for Reply 

A SHORTENED STATUTORY PERIOD FOR REPLY IS SET TO EXPIRE 3 MONTH(S) FROM 
THE MAILING DATE OF THIS COMMUNICATION. 

" f^^M^S-ZV^ a ^ h ailab,e ( unc lf r t the Provisions of 37 CFR 1.1 36 (a). In no event, however, may a reply be timely filed 
after SIX (6) MONTHS from the mailing date of this communication. 

" <f no nPhori for ?Jl ^tf^r hT * ^ ^ (30) dayS ' * rep,y within the statutory minimum of thirt V < 30 > da V s wi » * considered timely 

- If NO period for reply is specified above, the maximum statutory period will apply and will expire SIX (6) MONTHS from the mailing date of this communication 

- Failure to reply wrth.n the set or extended period for reply will, by statute, cause the application to become ABANDONED ( 3 Tu S C S1 33) C ° mmUn,Catl ° n ' 

- Any reply received by the Office later than three months after the mailing date of this communication, even if timely filed, may reduce any 
earned patent term adjustment. See 37 CFR 1.704(b) 'cuu^c any 

Status 

1 )03 Responsive to communication(s) filed on 31 July 1998 . 
2a)D This action is FINAL. 2b)EI This action is non-final. 

3) Q Since this application is in condition for allowance except for formal matters, prosecution as to the merits is 

closed in accordance with the practice under Ex parte Quay/e, 1935 CD. 11, 453 O.G. 213. 

Disposition of Claims 

4) E3 Claim(s) 1^22 is/are pending in the application. 

4a) Of the above claim(s) is/are withdrawn from consideration. 

5) D Claim(s) is/are allowed. 

6) |EI Claim(s) 1^22 is/are rejected. 

7) Q Claim(s) is/are objected to. 

8) D Claims are subject to restriction and/or election requirement. 

Application Papers 

9) 13 The specification is objected to by the Examiner. 

10) Q The drawing(s) filed on is/are objected to by the Examiner. 

11) D The proposed drawing correction filed on is: a)D approved b)D disapproved. 

12) Q The oath or declaration is objected to by the Examiner. 

Priority under 35 U.S.C. § 119 

13) 0 Acknowledgment is made of a claim for foreign priority under 35 U.S.C. § 119(a)-(d). 

a)DAII b)D Some*c)D None of: 

1. D Certified copies of the priority documents have been received. 

2. Q Certified copies of the priority documents have been received in Application No. 



3.Q Copies of the certified copies of the priority documents have been received in this National Stage 
application from the International Bureau (PCT Rule 17.2(a)). 
* See the attached detailed Office action for a list of the certified copies not received. 

14)D Acknowledgement is made of a claim for domestic priority under 35 U.S.C. & 1 19(e). 



Attachment(s) 

15) £3 Notice of References Cited (PTO-892) 

16) £3 Notice of Draftsperson's Patent Drawing Review (PTO-948) 

17) H Information Disclosure Statement(s) (PTO-1449) Paper No(s) 2 



18) D Interview Summary (PTO-413) Paper No(s). 

19) □ Notice of Informal Patent Application (PTO-152) 

20) □ Other: 



U.S. Patent and Trademark Office 
PTO-326 (Rev. 9-00) 



Office Action Summary 



Part of Paper No. 3 



Application/Control Number: 09/127,767 
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DETAILED ACTION 

1 . Claims 1-22 have been examined. 

Claim Objections 

2. Claim 5 is objected to because of the following informalities: the word "eceives" should 
be changed to "receives." Appropriate correction is required. 

Claim Rejections - 35 USC § 103 

3. The following is a quotation of 35 U.S.C. 103(a) which forms the basis for all 
obviousness rejections set forth in this Office action: 

(a) A patent may not be obtained though the invention is not identically disclosed or described as set 
forth in section 1 02 of this title, if the differences between the subject matter sought to be patented and 
the prior art are such that the subject matter as a whole would have been obvious at the time the 
invention was made to a person having ordinary skill in the art to which said subject matter pertains. 
Patentability shall not be negatived by the manner in which the invention was made. 

4. Claims 1-22 are rejected under 35 U.S.C. 103(a) as being unpatentable over Menezes 
et al (Handbook of Applied Cryptography). 

Claim 1: The claimed invention is directed to a method for mutually authenticating a first 
and second party. Such mutual authentication systems were known in the art at the time of the 
invention, and the Examiner will refer to SKID3 disclosed on page 402 of Menezes et al as 
merely one example. 

The claimed invention teaches (a) receiving a random number, (b) incrementing a count 
value, (c) generating a response by performing a key cryptographic function (KCF) on the 
received random number and count value, (d) transferring the count value and the generated 
response, (e) receiving another response being a result of performing a KCF on the transferred 
count value, and (0 verifying the response received in step e. 
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In SKID3 disclosed on page 402 of Menezes et al, party A (a) receives a random value 
r B , (b) creates a new value r A , (c) generates a response by performing a KCF on the received 
value r B and the newly created value r A , (d) transfers r A and the generated response, (e) 
receives another response being a result of performing a KCF on the transferred value r A , and 
(f) verifies the response received in step e. 

By direct comparison of SKID3 and the claimed invention, SKID3 only differs from the 
claimed invention in regards to using a value r A instead of a "count value" as disclosed in the 
claim. 

However, pages 397-400 of Menezes et al disclose interchangeability in authentication 
protocols of random numbers, such as r A , with sequence numbers, such as the count value in 
claim 1 . In particular, Menezes et al disclose three different types of numbers used in 
authentication protocols to prevent "replay" attacks: (i) Random numbers, (ii) Sequence 
numbers, and (iii) Timestamps. The Examiner notes that one of ordinary skill in the art at the 
time of the invention would have known replay attacks were used to subvert challenge-response 
authentication protocols, and therefore would have been familiar with choosing one of the three 
above options. 

Therefore, it would have been obvious to one of ordinary skill in the art at the time of the 
invention to use a counter value in place of random number r A in the SKID3 authentication 
protocol taught in Menezes et al, since pages 397-400 of Menezes et al disclose random 
numbers, sequence numbers, serial numbers, counter values, and timestamps were all viable 
options known for preventing replay attacks in authentication protocols such as SKID3. 

Claim 2: The claimed invention teaches generating a first key from a root key. It was 
well known in the art at the time of the invention to generate a secondary key using an A-key as 
a root key; in fact, on lines 20-26 of page 3 of the specification the applicant describes such a 
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prior art system in regards to applicant's Fig. 1 (identified as prior art). Thus, it would have been 
obvious to one of ordinary skill in the art at the time of the invention to use an A-key to generate 
key K in the SKID3 protocol of Menezes et al since this was a well known and often 
implemented method for effectively generating a cryptographic key in the art. 

Claim 3: The claimed invention includes an identifier in the response created in step (c) 
of claim 1. Menezes et al disclose including identification information "B" in the corresponding 
response (page 402) of the SKID3 authentication protocol. 

Claim 4: The claimed invention teaches establishing a second key based on the first 
and second challenges described in claim 1. In SKID3 disclosed by Menezes et al, a 
cryptographic key K is generated based on the protocol encrypting challenges r A and r B using 
the generated key K. 

Claim 5: The claimed invention teaches the challenge in step (a) of claim 1 is a global 
challenge. Clearly, SKID3 in Menezes et al could be used for authenticating a plurality of 
mobile units when r B is broadcast globally from a single base unit. Page 3 of the applicant's 
specification describes a prior art authentication system comprising a base station and 
corresponding mobile stations that would have been an obvious choice to use a well known 
authentication protocol such as SKID3 described in Menezes et al. 

Thus it would have been obvious to one of ordinary skill in the art at the time of the 
invention to implement an authentication protocol such as SKID3 using global challenges when 
implementing authentication systems comprising a single base station and a plurality of mobile 
stations as described in the prior art authentication system on page 3 of the specification. 

Claim 6: The claimed invention teaches a wireless system. Applying an authentication 
protocol to a wireless system was known in the art at the time of the invention as evidenced by 
the admitted prior art system discussed on page 3 of the specification. Clearly, one of ordinary 
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skill in the art at the time of the invention would know a standard authentication protocol such as 
SKID3 could be implemented in a wireless environment such as that described in the admitted 
prior art system in the specification. 

Claim 7: The claimed invention teaches including type data indicating a type of protocol 
being performed in the response generated in step (c) of claim 1 . Menezes et al disclose 
identifiers included in the generated responses ("A" and "B" on page 402), where the identifiers 
allow a recipient to verify the identifier as his/her own and optionally embed additional random 
numbers in the identifier or include information regarding the form of the challenges (see bottom 
of page 401 of Menezes et al— although the text relied on in Menezes et al does not directly 
refer to the SKID3 protocol, the identifiers described by Menezes et al on page 401 are the 
same as those in the SKID3 protocol disclosed on page 402). 

Since Menezes et al teaches including information regarding "the form of the challenges" 
in identifiers included in a generated response, it would have been obvious to one of ordinary 
skill in the art at the time of the invention that including information pertaining to the form of 
challenges as disclosed at the bottom of page 401 of Menezes et al is the same as including 
protocol information as taught in claim 7 since a type of authentication protocol depends on the 
form of the challenges. 

Claim 8: The claimed invention contains the same limitations as previously rejected 
claims 3 and 7 and is rejected for the same reasons. 

Claim 9: The claimed invention contains the same limitations as previously rejected 
claim 4 and is rejected for the same reasons. 

Claim 10: The claimed invention teaches the second key is one of shared secret data 
and a session key. In SKID3 disclosed by Menezes et al, cryptographic key K corresponds to 
the second key in the claimed invention where K is clearly a shared key since both A and B 
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have access to it. Therefore, key K in SKID3 taught in Menezes et al is shared secret data 
between A and B. 

Claim 11: The claimed invention teaches incrementing the count value using a bit 
counter greater than 64 bits which was initialized using a random number. Page 399 in 
Menezes et al discloses using a counter value in lieu of a random number to prevent replay 
attacks against an authentication protocol such as SKID3 (see previous discussion of claim 1), 
but Menezes et al does not explicitly teach a specific size or initialization procedure for 
generating a counter value. 

The choice of a 64 bit or greater counter value would have been an obvious design 
choice for implementing the SKID3 authentication protocol taught in Menezes et al when 
counter values up to 2 s4 are required. Furthermore, it was standard practice in the art of 
initializing a counter to start at some random offset value to add an extra layer cryptographic 
security against potential reverse engineering of the authentication system. 

Claims 12-22: The claimed inventions contain the same limitations as previously 
rejected claims 1-11 except from the point of view of the first party instead of from the point of 
view of the second party. 

Conclusion 

5. The prior art made of record and not relied upon is considered pertinent to applicant's 
disclosure. 

Patel (US 6014085) 

Dent et al (US 5559886) 

Dent et al (US 5594795) 

Michener et al (US 5351293) 
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Fischer (US 5659617) 
Bruwer et al (US 5841866) 

6. Any inquiry concerning this communication or earlier communications from the examiner 
should be directed to Steve Kabakoff whose telephone number is (703) 306-4153. The 
examiner can normally be reached on 8:30am to 6:00pm except every other Friday. 

If attempts to reach the examiner by telephone are unsuccessful, the examiner's 
supervisor, Tod Swann can be reached on (703) 308-7791. The fax phone numbers for the 
organization where this application or proceeding is assigned are (703) 305-0040 for regular 
communications and (703) 305-9051 for After Final communications. 

Any inquiry of a general nature or relating to the status of this application or proceeding 
should be directed to the receptionist whose telephone number is (703) 305-3900. 

S£ 

SEK 

November 21, 2000 




